mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-30 00:20:08 +00:00
Code Issues Projects Releases Wiki Activity

Add "CVE:" tag to current patches in OE-core

Browse Source 
The currnet patches in OE-core doesn't have the "CVE:"
tag, now part of the policy of the patches.

This is patch add this tag to several patches. There might
be patches that I miss; the tag can be added in the future.

(From OE-Core rev: 065ebeb3e15311d0d45385e15bf557b1c95b1669)

Signed-off-by: Mariano Lopez <mariano.lopez@linux.intel.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Mariano Lopez
2016-01-08 12:03:58 +00:00
committed by Richard Purdie
parent f04fb8806c
commit e5c011b041
36 changed files with 36 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta/recipes-devtools/e2fsprogs/e2fsprogs/0001-libext2fs-fix-potential-buffer-overflow-in-closefs.patch
+1
View File
@@ -4,6 +4,7 @@ Date: Fri, 6 Feb 2015 12:46:39 -0500
Subject: [PATCH] libext2fs: fix potential buffer overflow in closefs()
Upstream-Status: Backport
CVE: CVE-2015-1572
The bug fix in f66e6ce4446: "libext2fs: avoid buffer overflow if
s_first_meta_bg is too big" had a typo in the fix for
meta/recipes-devtools/e2fsprogs/e2fsprogs/CVE-2015-0247.patch
+1 -1
View File
@@ -11,8 +11,8 @@ fs->desc_blocks. This doesn't correct the bad s_first_meta_bg value,
but it avoids causing the e2fsprogs userspace programs from
potentially crashing.
Fixes CVE-2015-0247
Upstream-Status: Backport
CVE: CVE-2015-0247
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
meta/recipes-devtools/elfutils/elfutils-0.148/elf_begin.c-CVE-2014-9447-fix.patch
+1
View File
@@ -7,6 +7,7 @@ this patch is from:
https://git.fedorahosted.org/cgit/elfutils.git/commit/?id=147018e729e7c22eeabf15b82d26e4bf68a0d18e
Upstream-Status: Backport
CVE: CVE-2014-9447
Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com>
---
meta/recipes-devtools/rpm/rpm/rpm-CVE-2013-6435.patch
+1
View File
@@ -4,6 +4,7 @@ Date: Wed, 10 Jun 2015 14:36:56 +0000
Subject: [PATCH 2/2] rpm: CVE-2013-6435
Upstream-Status: Backport
CVE: CVE-2013-6435
Reference:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-6435
meta/recipes-devtools/rpm/rpm/rpm-CVE-2014-8118.patch
+1
View File
@@ -4,6 +4,7 @@ Date: Wed, 10 Jun 2015 12:56:55 +0000
Subject: [PATCH 1/2] rpm: CVE-2014-8118
Upstream-Status: Backport
CVE: CVE-2014-8118
Reference:
https://bugzilla.redhat.com/show_bug.cgi?id=1168715
meta/recipes-devtools/rsync/rsync-2.6.9/rsync-2.6.9-fname-obo.patch
+1
View File
@@ -1,4 +1,5 @@
Upstream-Status: Backport [ The patch is rsync-2.6.9 specific ]
CVE: CVE-2007-4091
The patch is from https://issues.rpath.com/browse/RPL-1647 and is used to
address http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-4091
meta/recipes-devtools/rsync/rsync-3.1.1/0001-Complain-if-an-inc-recursive-path-is-not-right-for-i.patch
+1
View File
@@ -6,6 +6,7 @@ Subject: [PATCH] Complain if an inc-recursive path is not right for its dir.
trasnfer path.
Upstream-Status: BackPort
CVE: CVE-2014-9512
Fix the CVE-2014-9512, rsync 3.1.1 allows remote attackers to write to arbitrary
files via a symlink attack on a file in the synchronization path.
meta/recipes-devtools/rsync/rsync-3.1.1/rsync.git-eac858085.patch
+1
View File
@@ -5,6 +5,7 @@ Subject: [PATCH 1/1] Add compat flag to allow proper seed checksum order.
Fixes the equivalent of librsync's CVE-2014-8242 issue.
Upstream-Status: Backport
CVE: CVE-2014-8242
Signed-off-by: Roy Li <rongqing.li@windriver.com>
---